| |
| |||||||
Log-Analyse und Auswertung: C:\WINDOWS\system32\lsass.exe...ist das ok?......Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
12.08.2010, 19:02
| #1 |
| |  C:\WINDOWS\system32\lsass.exe...ist das ok?...... Hier meine Log Auswertung Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:45:59, on 12.08.2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\wltrysvc.exe C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Programme\Gemeinsame Dateien\G DATA\AVKProxy\AVKProxy.exe C:\Programme\G DATA\InternetSecurity\AVK\AVKService.exe C:\Programme\G DATA\InternetSecurity\AVK\AVKWCtl.exe C:\Programme\Bonjour\mDNSResponder.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLService.exe C:\Programme\Java\jre6\bin\jqs.exe C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe C:\Programme\Gemeinsame Dateien\G DATA\GDScan\GDScan.exe C:\Programme\G DATA\InternetSecurity\Firewall\GDFwSvc.exe C:\Programme\ATI Technologies\ATI.ACE\cli.exe C:\Programme\VIAudioi\SBADeck\ADeck.exe C:\Programme\Synaptics\SynTP\SynTPLpr.exe C:\Programme\Synaptics\SynTP\SynTPEnh.exe C:\Programme\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe C:\Programme\G DATA\InternetSecurity\AVKTray\AVKTray.exe C:\WINDOWS\system32\WLTRAY.exe C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\Nokia\Nokia PC Suite 7\PCSuite.exe C:\Programme\ATI Technologies\ATI.ACE\CLI.exe C:\Programme\McAfee Security Scan\2.0.181\SSScheduler.exe C:\Programme\Yahoo!\Widgets\YahooWidgets.exe C:\Programme\PC Connectivity Solution\ServiceLayer.exe C:\Programme\Yahoo!\Widgets\YahooWidgets.exe C:\Programme\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Programme\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Programme\Yahoo!\Widgets\YahooWidgets.exe C:\Programme\ATI Technologies\ATI.ACE\cli.exe C:\Programme\Mozilla Firefox\firefox.exe C:\Programme\Mozilla Firefox\plugin-container.exe C:\Dokumente und Einstellungen\Kruziatus\Eigene Dateien\Downloads\HiJackThis.exe C:\WINDOWS\system32\wuauclt.exe C:\Programme\Skype\Toolbars\Shared\SkypeNames.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Programme\G DATA\InternetSecurity\Webfilter\AVKWebIE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Programme\G DATA\InternetSecurity\Webfilter\AVKWebIE.dll O4 - HKLM\..\Run: [ATICCC] "C:\Programme\ATI Technologies\ATI.ACE\cli.exe" runtime O4 - HKLM\..\Run: [AudioDeck] C:\Programme\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [SynTPLpr] C:\Programme\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [GDFirewallTray] C:\Programme\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe O4 - HKLM\..\Run: [G DATA AntiVirus Trayapplication] C:\Programme\G DATA\InternetSecurity\AVKTray\AVKTray.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programme\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray O4 - HKCU\..\Run: [Performance Center] C:\Programme\Ascentive\Performance Center\APCMain.exe -m O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -update plugin O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - S-1-5-18 Startup: Yahoo! Widgets.lnk = C:\Programme\Yahoo!\Widgets\YahooWidgets.exe (User 'SYSTEM') O4 - .DEFAULT Startup: Yahoo! Widgets.lnk = C:\Programme\Yahoo!\Widgets\YahooWidgets.exe (User 'Default user') O4 - Startup: Yahoo! Widgets.lnk = C:\Programme\Yahoo!\Widgets\YahooWidgets.exe O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Programme\ATI Technologies\ATI.ACE\CLI.exe O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Programme\PokerStars\PokerStarsUpdate.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O15 - Trusted Zone: hxxp://*.buy-security-essentials.com O15 - Trusted Zone: hxxp://*.download-soft-package.com O15 - Trusted Zone: hxxp://*.download-software-package.com O15 - Trusted Zone: hxxp://*.get-key-se10.com O15 - Trusted Zone: hxxp://*.is-software-download.com O15 - Trusted Zone: hxxp://*.buy-security-essentials.com (HKLM) O15 - Trusted Zone: hxxp://*.get-key-se10.com (HKLM) O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Programme\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - hxxp://www.vexcast.com/download/vexcast.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G Data Software AG - C:\Programme\Gemeinsame Dateien\G DATA\AVKProxy\AVKProxy.exe O23 - Service: G Data Scheduler (AVKService) - G Data Software AG - C:\Programme\G DATA\InternetSecurity\AVK\AVKService.exe O23 - Service: G Data Dateisystem Wächter (AVKWCtl) - G Data Software AG - C:\Programme\G DATA\InternetSecurity\AVK\AVKWCtl.exe O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe O23 - Service: G Data Personal Firewall (GDFwSvc) - G Data Software AG - C:\Programme\G DATA\InternetSecurity\Firewall\GDFwSvc.exe O23 - Service: G Data Scanner (GDScan) - G Data Software AG - C:\Programme\Gemeinsame Dateien\G DATA\GDScan\GDScan.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia - C:\Programme\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe |
|
12.08.2010, 19:57
| #2 | ||
| /// Helfer-Team    | C:\WINDOWS\system32\lsass.exe...ist das ok?...... Hallo und Herzlich Willkommen!
__________________ Bevor wir unsere Zusammenarbeit beginnen, [Bitte Vollständig lesen]:
Wie man Fragen auf geschickte Art stellt: Zitat:
1. - Lade dir RSIT - 2. Bitte Versteckte - und Systemdateien sichtbar machen den Link hier anklicken: System-Dateien und -Ordner unter XP und Vista sichtbar machen Am Ende unserer Arbeit, kannst wieder rückgängig machen! 3. → Lade Dir HJTscanlist.zip herunter → entpacke die Datei auf deinem Desktop → Bei WindowsXP Home musst vor dem Scan zusätzlich tasklist.zip installieren → per Doppelklick starten → Wähle dein Betriebsystem aus - Vista → Wenn Du gefragt wirst, die Option "Einstellung" (1) - scanlist" wählen → Nach kurzer Zeit sollte sich Dein Editor öffnen und die Datei hjtscanlist.txt präsentieren → Bitte kopiere den Inhalt hier in Deinen Thread. 4. Ich würde gerne noch all deine installierten Programme sehen: Lade dir das Tool CCleaner herunter installieren (Software-Lizenzvereinbarung lesen, falls angeboten wird "Füge CCleaner Yahoo! Toolbar hinzu" abwählen)→ starten→ falls nötig - unter Options settings-> "german" einstellen dann klick auf "Extra (um die installierten Programme auch anzuzeigen)→ weiter auf "Als Textdatei speichern..." wird eine Textdatei (*.txt) erstellt, kopiere dazu den Inhalt und füge ihn da ein Zitat:
Coverflow |
|
12.08.2010, 20:57
| #3 |
| | C:\WINDOWS\system32\lsass.exe...ist das ok?...... [code]
__________________RSIT Logfile: Code:
ATTFilter Logfile of random's system information tool 1.08 (written by random/random) Run by Kruziatus at 2010-08-12 21:53:33 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 26 GB (53%) free of 50 GB Total RAM: 1023 MB (42% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:53:43, on 12.08.2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\wltrysvc.exe C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Programme\Gemeinsame Dateien\G DATA\AVKProxy\AVKProxy.exe C:\Programme\G DATA\InternetSecurity\AVK\AVKService.exe C:\Programme\G DATA\InternetSecurity\AVK\AVKWCtl.exe C:\Programme\Bonjour\mDNSResponder.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLService.exe C:\Programme\Java\jre6\bin\jqs.exe C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe C:\Programme\ATI Technologies\ATI.ACE\cli.exe C:\Programme\VIAudioi\SBADeck\ADeck.exe C:\Programme\Synaptics\SynTP\SynTPLpr.exe C:\Programme\Synaptics\SynTP\SynTPEnh.exe C:\Programme\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe C:\Programme\G DATA\InternetSecurity\AVKTray\AVKTray.exe C:\WINDOWS\system32\WLTRAY.exe C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Programme\Nokia\Nokia PC Suite 7\PCSuite.exe C:\Programme\ATI Technologies\ATI.ACE\CLI.exe C:\Programme\Yahoo!\Widgets\YahooWidgets.exe C:\Programme\Gemeinsame Dateien\G DATA\GDScan\GDScan.exe C:\Programme\Yahoo!\Widgets\YahooWidgets.exe C:\Programme\Yahoo!\Widgets\YahooWidgets.exe C:\Programme\PC Connectivity Solution\ServiceLayer.exe C:\Programme\G DATA\InternetSecurity\Firewall\GDFwSvc.exe C:\Programme\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Programme\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Programme\ATI Technologies\ATI.ACE\cli.exe C:\Programme\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\notepad.exe C:\Dokumente und Einstellungen\Kruziatus\Eigene Dateien\Downloads\RSIT.exe C:\Programme\trend micro\Kruziatus.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Programme\G DATA\InternetSecurity\Webfilter\AVKWebIE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Programme\G DATA\InternetSecurity\Webfilter\AVKWebIE.dll O4 - HKLM\..\Run: [ATICCC] "C:\Programme\ATI Technologies\ATI.ACE\cli.exe" runtime O4 - HKLM\..\Run: [AudioDeck] C:\Programme\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [SynTPLpr] C:\Programme\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [GDFirewallTray] C:\Programme\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe O4 - HKLM\..\Run: [G DATA AntiVirus Trayapplication] C:\Programme\G DATA\InternetSecurity\AVKTray\AVKTray.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programme\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray O4 - HKCU\..\Run: [Performance Center] C:\Programme\Ascentive\Performance Center\APCMain.exe -m O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - S-1-5-18 Startup: Yahoo! Widgets.lnk = C:\Programme\Yahoo!\Widgets\YahooWidgets.exe (User 'SYSTEM') O4 - .DEFAULT Startup: Yahoo! Widgets.lnk = C:\Programme\Yahoo!\Widgets\YahooWidgets.exe (User 'Default user') O4 - Startup: Yahoo! Widgets.lnk = C:\Programme\Yahoo!\Widgets\YahooWidgets.exe O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Programme\ATI Technologies\ATI.ACE\CLI.exe O8 - Extra context menu item: Nach Microsoft E&xel exportieren - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Programme\PokerStars\PokerStarsUpdate.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe O15 - Trusted Zone: hxxp://*.buy-security-essentials.com O15 - Trusted Zone: hxxp://*.download-soft-package.com O15 - Trusted Zone: hxxp://*.download-software-package.com O15 - Trusted Zone: hxxp://*.get-key-se10.com O15 - Trusted Zone: hxxp://*.is-software-download.com O15 - Trusted Zone: hxxp://*.buy-security-essentials.com (HKLM) O15 - Trusted Zone: hxxp://*.get-key-se10.com (HKLM) O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Programme\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - hxxp://www.vexcast.com/download/vexcast.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G Data Software AG - C:\Programme\Gemeinsame Dateien\G DATA\AVKProxy\AVKProxy.exe O23 - Service: G Data Scheduler (AVKService) - G Data Software AG - C:\Programme\G DATA\InternetSecurity\AVK\AVKService.exe O23 - Service: G Data Dateisystem Wächter (AVKWCtl) - G Data Software AG - C:\Programme\G DATA\InternetSecurity\AVK\AVKWCtl.exe O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe O23 - Service: G Data Personal Firewall (GDFwSvc) - G Data Software AG - C:\Programme\G DATA\InternetSecurity\Firewall\GDFwSvc.exe O23 - Service: G Data Scanner (GDScan) - G Data Software AG - C:\Programme\Gemeinsame Dateien\G DATA\GDScan\GDScan.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Programme\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programme\Java\jre6\bin\jqs.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia - C:\Programme\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe -- End of file - 10392 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0124123D-61B4-456f-AF86-78C53A0790C5}] G Data WebFilter - C:\Programme\G DATA\InternetSecurity\Webfilter\AVKWebIE.dll [2009-09-18 594504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Anmelde-Hilfsprogramm - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Programme\Java\jre6\bin\jp2ssv.dll [2010-05-27 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-27 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {0124123D-61B4-456f-AF86-78C53A0790C5} - G Data WebFilter - C:\Programme\G DATA\InternetSecurity\Webfilter\AVKWebIE.dll [2009-09-18 594504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ATICCC"=C:\Programme\ATI Technologies\ATI.ACE\cli.exe [2005-08-12 45056] "AudioDeck"=C:\Programme\VIAudioi\SBADeck\ADeck.exe [2005-08-23 450560] "SynTPLpr"=C:\Programme\Synaptics\SynTP\SynTPLpr.exe [2005-03-18 98393] "SynTPEnh"=C:\Programme\Synaptics\SynTP\SynTPEnh.exe [2005-03-18 688217] "GDFirewallTray"=C:\Programme\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe [2009-09-24 1124424] "G DATA AntiVirus Trayapplication"=C:\Programme\G DATA\InternetSecurity\AVKTray\AVKTray.exe [2009-09-18 924232] "Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY [] "Adobe Reader Speed Launcher"=C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760] "Adobe ARM"=C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832] "SunJavaUpdateSched"=C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [2010-02-18 248040] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "PC Suite Tray"=C:\Programme\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-11-11 1451520] "Performance Center"=C:\Programme\Ascentive\Performance Center\APCMain.exe -m [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Programme\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\bgsmsnd.exe] C:\WINDOWS\system32\bgsmsnd.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray] C:\Programme\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] C:\Programme\HP\HP Software Update\HPWuSchd2.exe [2008-12-08 54576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Programme\Gemeinsame Dateien\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020 [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Programme\iTunes\iTunesHelper.exe [2009-09-21 305440] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid] C:\Programme\Logitech\Logitech Vid\vid.exe [2009-07-16 5458704] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon] C:\Programme\Logitech\Logitech WebCam Software\LWS.exe [2009-10-14 2793304] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan] C:\Programme\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer] C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer /watchfiles [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMusic FastStart] C:\Programme\Nokia\Nokia Music\NokiaMusic.exe [2009-07-22 2331936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray] C:\Programme\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-11-11 1451520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService] C:\Program Files\CyberLink\PowerCinema\PCMService.exe [2005-07-28 127118] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Programme\QuickTime\QTTask.exe [2009-09-05 417792] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL] C:\WINDOWS\sm56hlpr.exe [2005-09-16 557056] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\smss32.exe] C:\WINDOWS\system32\smss32.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^All Users^Startmenü^Programme^Autostart^McAfee Security Scan Plus.lnk] C:\PROGRA~1\MCAFEE~1\20DEB9~1.181\SSSCHE~1.EXE [2010-01-15 255536] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^Kruziatus^Startmenü^Programme^Autostart^Logitech . Produktregistrierung.lnk] C:\PROGRA~1\Logitech\LOGITE~1\eReg.exe [2009-10-14 517384] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Dokumente und Einstellungen^Kruziatus^Startmenü^Programme^Autostart^WISO Bewerbung-Reminder.lnk] C:\PROGRA~1\Buhl\BEWERB~1\KCREMI~1.EXE [2007-11-29 1236480] C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart ATI CATALYST System Tray.lnk - C:\Programme\ATI Technologies\ATI.ACE\CLI.exe C:\Dokumente und Einstellungen\Kruziatus\Startmenü\Programme\Autostart Yahoo! Widgets.lnk - C:\Programme\Yahoo!\Widgets\YahooWidgets.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2005-09-14 46080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableLUA"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoDriveAutorun"=0 "NoSetActiveDesktop"=1 "NoActiveDesktopChanges"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoSetActiveDesktop"=1 "NoActiveDesktopChanges"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe"="C:\Program Files\CyberLink\PowerCinema\PowerCinema.exe:*:Enabled:PowerCinema" "C:\Programme\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Programme\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\Programme\HP\Digital Imaging\bin\hpqste08.exe"="C:\Programme\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe" "C:\Programme\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Programme\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe" "C:\Programme\HP\Digital Imaging\bin\hposfx08.exe"="C:\Programme\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe" "C:\Programme\HP\Digital Imaging\bin\hposid01.exe"="C:\Programme\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe" "C:\Programme\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Programme\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe" "C:\Programme\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Programme\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Programme\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Programme\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe" "C:\Programme\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Programme\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe" "C:\Programme\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Programme\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe" "C:\Programme\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Programme\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe" "C:\Programme\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Programme\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe" "C:\Programme\HP\Digital Imaging\bin\hpoews01.exe"="C:\Programme\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\Programme\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Programme\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Programme\Bonjour\mDNSResponder.exe"="C:\Programme\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Programme\Nokia\Nokia Home Media Server\Media Server\twonkymedia.exe"="C:\Programme\Nokia\Nokia Home Media Server\Media Server\twonkymedia.exe:*:Enabled:TwonkyMedia" "C:\Programme\Nokia\Nokia Home Media Server\Media Server\twonkymediaserver.exe"="C:\Programme\Nokia\Nokia Home Media Server\Media Server\twonkymediaserver.exe:*:Enabled:TwonkyMediaServer" "C:\Programme\Orb Networks\Orb\bin\Orb.exe"="C:\Programme\Orb Networks\Orb\bin\Orb.exe:*:Enabled:Orb" "C:\Programme\Orb Networks\Orb\bin\OrbTray.exe"="C:\Programme\Orb Networks\Orb\bin\OrbTray.exe:*:Enabled:OrbTray" "C:\Programme\Orb Networks\Orb\bin\OrbStreamerClient.exe"="C:\Programme\Orb Networks\Orb\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client" "C:\Programme\Orb Networks\Orb\bin\xmltv.exe"="C:\Programme\Orb Networks\Orb\bin\xmltv.exe:*:Enabled:OrbTVGuide" "C:\Programme\Orb Networks\Orb\bin\OrbChannelScan.exe"="C:\Programme\Orb Networks\Orb\bin\OrbChannelScan.exe:*:Enabled:OrbChannelScan" "C:\Programme\iTunes\iTunes.exe"="C:\Programme\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Programme\Messenger\msmsgs.exe"="C:\Programme\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "C:\Programme\Skype\Plugin Manager\skypePM.exe"="C:\Programme\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Programme\Windows Live\Messenger\wlcsdk.exe"="C:\Programme\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Programme\Windows Live\Messenger\msnmsgr.exe"="C:\Programme\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Programme\Skype\Phone\Skype.exe"="C:\Programme\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Programme\Logitech\Logitech Vid\Vid.exe"="C:\Programme\Logitech\Logitech Vid\Vid.exe:*:Enabled:Logitech Vid" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Programme\Windows Live\Messenger\wlcsdk.exe"="C:\Programme\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Programme\Windows Live\Messenger\msnmsgr.exe"="C:\Programme\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" ======List of files/folders created in the last 1 months====== 2010-08-12 21:30:04 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$ 2010-08-12 21:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$ 2010-08-12 21:27:50 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$ 2010-08-12 21:26:29 ----D---- C:\Programme\trend micro 2010-08-12 21:26:25 ----D---- C:\rsit 2010-08-12 21:25:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$ 2010-08-12 20:37:21 ----D---- C:\Programme\Spyware Doctor 2010-08-12 20:37:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$ 2010-08-12 20:36:46 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$ 2010-08-12 20:29:34 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$ 2010-08-12 20:28:07 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$ 2010-08-08 00:30:39 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee 2010-08-08 00:30:38 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\McAfee Security Scan 2010-08-08 00:30:28 ----D---- C:\Programme\McAfee Security Scan 2010-08-03 18:39:16 ----A---- C:\WINDOWS\imsins.BAK 2010-08-03 18:38:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$ 2010-07-13 21:11:16 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$ ======List of files/folders modified in the last 1 months====== 2010-08-12 21:52:48 ----D---- C:\WINDOWS\Temp 2010-08-12 21:46:58 ----RSD---- C:\WINDOWS\assembly 2010-08-12 21:41:22 ----AD---- C:\WINDOWS 2010-08-12 21:40:58 ----D---- C:\WINDOWS\Microsoft.NET 2010-08-12 21:40:34 ----D---- C:\WINDOWS\system32 2010-08-12 21:40:34 ----D---- C:\Programme\Gemeinsame Dateien 2010-08-12 21:40:33 ----HD---- C:\Config.Msi 2010-08-12 21:39:27 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-08-12 21:39:23 ----D---- C:\WINDOWS\system32\CatRoot2 2010-08-12 21:30:15 ----HD---- C:\WINDOWS\inf 2010-08-12 21:30:10 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-08-12 21:30:10 ----D---- C:\WINDOWS\system32\drivers 2010-08-12 21:29:44 ----HD---- C:\WINDOWS\$hf_mig$ 2010-08-12 21:26:29 ----RD---- C:\Programme 2010-08-12 21:22:45 ----AD---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP 2010-08-12 21:20:59 ----SHD---- C:\WINDOWS\Installer 2010-08-12 21:20:01 ----D---- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help 2010-08-12 21:00:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-08-12 20:51:41 ----D---- C:\WINDOWS\WinSxS 2010-08-12 20:41:46 ----D---- C:\Programme\Internet Explorer 2010-08-12 20:40:55 ----D---- C:\WINDOWS\ie8updates 2010-08-12 20:32:03 ----D---- C:\Dokumente und Einstellungen\Kruziatus\Anwendungsdaten\UseNeXT 2010-08-12 20:30:05 ----D---- C:\WINDOWS\Debug 2010-08-12 20:29:36 ----D---- C:\Programme\Movie Maker 2010-08-12 20:29:29 ----D---- C:\WINDOWS\Prefetch 2010-08-12 19:20:49 ----SH---- C:\boot.ini 2010-08-12 19:20:49 ----A---- C:\WINDOWS\win.ini 2010-08-12 19:20:49 ----A---- C:\WINDOWS\system.ini 2010-08-12 19:20:46 ----D---- C:\WINDOWS\pss 2010-08-09 22:31:08 ----D---- C:\Dokumente und Einstellungen\Kruziatus\Anwendungsdaten\vlc 2010-08-05 17:31:11 ----D---- C:\Dokumente und Einstellungen\Kruziatus\Anwendungsdaten\Image Zone Express 2010-08-03 20:09:31 ----A---- C:\WINDOWS\system32\MRT.exe 2010-08-03 18:38:28 ----D---- C:\WINDOWS\SoftwareDistribution 2010-08-01 21:32:13 ----D---- C:\Dokumente und Einstellungen\Kruziatus\Anwendungsdaten\dvdcss 2010-07-27 08:29:42 ----A---- C:\WINDOWS\system32\shell32.dll 2010-07-25 11:45:23 ----D---- C:\Programme\Mozilla Firefox ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 gagp30kx;Microsoft Allgemeiner AGPv3.0-Filter für K8-Prozessorplattformen; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-13 46464] R0 GDBehave;GDBehave; C:\WINDOWS\system32\drivers\GDBehave.sys [2009-12-16 28616] R0 GDNdisIc;GDNdisIc; C:\WINDOWS\system32\drivers\GDNdisIc.sys [2009-10-10 22528] R0 ohci1394;Texas Instruments OHCI-konformer IEEE 1394-Hostcontroller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696] R0 viamraid;viamraid; C:\WINDOWS\system32\DRIVERS\viamraid.sys [2004-05-18 74112] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-15 76544] R1 AmdK8;AMD-Prozessortreiber; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 43008] R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232] R1 GRD;G Data Rootkit Detector Driver; \??\C:\WINDOWS\system32\drivers\GRD.sys [] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.2.0.3; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-10-11 17801] R2 GDTdiInterceptor;GDTdiInterceptor; \??\C:\WINDOWS\system32\drivers\GDTdiIcpt.sys [] R3 Arp1394;1394-ARP-Clientprotokoll; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-09-14 1339392] R3 BCM43XX;Treiber Broadcom 802.11 Netzwerkadapter; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2004-12-22 369024] R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760] R3 GDMnIcpt;GDMnIcpt; \??\C:\WINDOWS\system32\drivers\MiniIcpt.sys [] R3 GearAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [2009-05-18 26600] R3 HookCentre;HookCentre; \??\C:\WINDOWS\system32\drivers\HookCentre.sys [] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2009-10-07 25752] R3 NIC1394;1394-Netzwerktreiber; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496] R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2005-09-16 905544] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-03-18 188928] R3 usbuhci;Miniporttreiber für universellen Microsoft USB-Hostcontroller; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2005-08-17 201984] S1 kbdhid;Tastatur-HID-Treiber; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 CCDECODE;Untertiteldecoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 CoachUsb;Coach Digital Camera on USB; C:\WINDOWS\system32\DRIVERS\CoachUsb.sys [2004-01-22 46944] S3 CoachVc;Coach Video Capture; C:\WINDOWS\system32\DRIVERS\CoachVc.sys [2003-11-03 44256] S3 hidusb;Microsoft HID Class-Treiber; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-08-26 21568] S3 LVRS;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs.sys [2009-05-01 265496] S3 mouhid;Maus-HID-Treiber; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12288] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;NABTS/FEC VBI-Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Microsoft TV-/Videoverbindung; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-10-06 17664] S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-10-06 22016] S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\WINDOWS\system32\drivers\nmwcdnsu.sys [2009-10-06 136704] S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2009-10-06 8320] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816] S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2009-04-30 13976] S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2009-04-30 2687512] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [] S3 streamip;BDA-IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [] S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448] S3 usbaudio;USB-Audiotreiber (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbccgp;Microsoft Standard-USB-Haupttreiber; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Microsoft USB-Druckerklasse; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;USB-Scannertreiber; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112] S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936] S3 USBSTOR;USB-Massenspeichertreiber; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;World Standard Teletext-Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-09-14 376832] R2 AVKProxy;G Data AntiVirus Proxy; C:\Programme\Gemeinsame Dateien\G DATA\AVKProxy\AVKProxy.exe [2009-12-07 1128008] R2 AVKService;G Data Scheduler; C:\Programme\G DATA\InternetSecurity\AVK\AVKService.exe [2009-08-08 397896] R2 AVKWCtl;G Data Dateisystem Wächter; C:\Programme\G DATA\InternetSecurity\AVK\AVKWCtl.exe [2009-11-25 1251488] R2 Bonjour Service;Bonjour-Dienst; C:\Programme\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe [2005-04-01 184406] R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] R2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe [2005-04-01 110676] R2 CyberLink Media Library Service;CyberLink Media Library Service; C:\Programme\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe [2005-04-01 61440] R2 JavaQuickStarterService;Java Quick Starter; C:\Programme\Java\jre6\bin\jqs.exe [2010-05-27 153376] R2 LVPrcSrv;Process Monitor; C:\Programme\Gemeinsame Dateien\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 154136] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728] R2 wltrysvc;Broadcom Wireless LAN Tray Service; C:\WINDOWS\System32\wltrysvc.exe [2004-12-22 65536] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R3 GDFwSvc;G Data Personal Firewall; C:\Programme\G DATA\InternetSecurity\Firewall\GDFwSvc.exe [2009-11-25 1547104] R3 GDScan;G Data Scanner; C:\Programme\Gemeinsame Dateien\G DATA\GDScan\GDScan.exe [2009-11-26 302152] R3 ServiceLayer;ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408] S2 vvdsvc;VJVodClientServices; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 iPod Service;iPod-Dienst; C:\Programme\iPod\bin\iPodService.exe [2009-09-21 545568] S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Programme\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] S3 odserv;Microsoft Office Diagnostics Service; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- |
|
12.08.2010, 20:58
| #4 |
| | C:\WINDOWS\system32\lsass.exe...ist das ok?...... [code] info.txtRSIT Logfile: Code:
ATTFilter logfile of random's system information tool 1.08 2010-08-12 21:28:15
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin
Adobe Reader 9.3.3 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A93000000001}
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Ashampoo Burning Studio 9.21-->"C:\Programme\Ashampoo\Ashampoo Burning Studio 9\unins000.exe"
Athlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x7
ATI - Dienstprogramm zur Deinstallation der Software-->C:\Programme\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{489C4FA2-F9C9-4FD4-BC9D-945218FFC6CD}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Broadcom 802.11 Network Adapter-->C:\WINDOWS\system32\BCMWLU00.exe verbose
BroadGun pdfMachine-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\bgssetup.exe -uninstall
CCleaner-->"C:\Programme\CCleaner\uninst.exe"
CloneCD-->"C:\Programme\SlySoft\CloneCD\ccd-uninst.exe" /D="C:\Programme\SlySoft\CloneCD"
FormatFactory 2.15-->C:\Programme\FreeTime\FormatFactory\uninst.exe
G Data InternetSecurity-->MsiExec.exe /I{D729E05E-B2B9-4DC4-AF57-47310576EDE0}
HijackThis 2.0.2-->"C:\Dokumente und Einstellungen\Kruziatus\Eigene Dateien\Downloads\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Hotfix für Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
HP Customer Participation Program 7.0-->C:\Programme\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Imaging Device Functions 7.0-->C:\Programme\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart Essential-->MsiExec.exe /X{6994491D-D491-48F1-AE1F-E179C1FFFC2F}
HP Photosmart, Officejet and Deskjet 7.0.A-->C:\Programme\HP\Digital Imaging\{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}\setup\hpzscr01.exe -datfile hposcr11.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP Solution Center 7.0-->C:\Programme\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{818ABC3C-635C-4651-8183-D0E9640B7DD1}
ImgBurn-->"C:\Programme\ImgBurn\uninstall.exe"
IsoBuster 2.5.5-->"C:\Programme\Smart Projects\IsoBuster\Uninst\unins000.exe"
iTunes-->MsiExec.exe /I{DA34FE93-5DC5-48E0-ACC8-A5389E05BB51}
J2SE Runtime Environment 5.0-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150000}
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
Logitech Vid-->MsiExec.exe /I{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}
Logitech Webcam Software-->MsiExec.exe /I{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}
MAGIX Screenshare-->C:\Programme\MAGIX\PCVisit\unwise.exe
McAfee Security Scan Plus-->"C:\Programme\McAfee Security Scan\uninstall.exe"
Microsoft .NET Framework 1.1 German Language Pack-->MsiExec.exe /X{E78BFA60-5393-4C38-82AB-E8019E464EB4}
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7-->"C:\WINDOWS\$NtUninstallWdf01007$\spuninst\spuninst.exe"
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0407-0000-0000000FF1CE} /uninstall {26454C26-D259-4543-AA60-3189E09C5F76}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-0407-0000-0000000FF1CE} /uninstall {9BD40163-B95D-4B07-8991-0AB775B6D88B}
Microsoft Office Access MUI (German) 2007-->MsiExec.exe /X{90120000-0015-0407-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (German) 2007-->MsiExec.exe /X{90120000-0016-0407-0000-0000000FF1CE}
Microsoft Office Groove MUI (German) 2007-->MsiExec.exe /X{90120000-00BA-0407-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (German) 2007-->MsiExec.exe /X{90120000-0044-0407-0000-0000000FF1CE}
Microsoft Office OneNote MUI (German) 2007-->MsiExec.exe /X{90120000-00A1-0407-0000-0000000FF1CE}
Microsoft Office Outlook MUI (German) 2007-->MsiExec.exe /X{90120000-001A-0407-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (German) 2007-->MsiExec.exe /X{90120000-0018-0407-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Italian) 2007-->MsiExec.exe /X{90120000-001F-0410-0000-0000000FF1CE}
Microsoft Office Proofing (German) 2007-->MsiExec.exe /X{90120000-002C-0407-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0410-0000-0000000FF1CE} /uninstall {322296D4-1EAE-4030-9FBC-D2787EB25FA2}
Microsoft Office Publisher MUI (German) 2007-->MsiExec.exe /X{90120000-0019-0407-0000-0000000FF1CE}
Microsoft Office Shared MUI (German) 2007-->MsiExec.exe /X{90120000-006E-0407-0000-0000000FF1CE}
Microsoft Office Word MUI (German) 2007-->MsiExec.exe /X{90120000-001B-0407-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWudf01005$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{6AFCA4E1-9B78-3640-8F72-A7BF33448200}
Motorola SM56 Data Fax Modem-->rundll32.exe sm56co.dll,SM56UnInstaller
Mozilla Firefox (3.6.8)-->C:\Programme\Mozilla Firefox\uninstall\helper.exe
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{6869591A-7DD8-46D2-837F-57CBF7358955}
Nokia Home Media Server-->MsiExec.exe /X{0EEB3C40-2A8C-4045-B3F9-13C4A5C490C0}
Nokia Map Loader-->MsiExec.exe /I{45D4F727-43B5-49CD-B474-B9866A8F4FB8}
Nokia Multimedia Common Components 2.4-->MsiExec.exe /I{6EB6C056-02BB-453E-8448-EC90B9794180}
Nokia Music-->MsiExec.exe /I{DC432844-6914-4421-910C-F1B05B3A761C}
Nokia Ovi Application Installer 6.85.3011-->msiexec /qn /x {42B74521-4706-412A-9A27-AED12B83E886}
Nokia Ovi Application Installer-->MsiExec.exe /I{42B74521-4706-412A-9A27-AED12B83E886}
Nokia Ovi Content Copier 6.85.3011-->msiexec /qn /x {6442DEDF-AC2F-4CBA-85DE-42E459C5006C}
Nokia Ovi Content Copier-->MsiExec.exe /X{6442DEDF-AC2F-4CBA-85DE-42E459C5006C}
Nokia Ovi One Touch Access 6.85.3011-->msiexec /qn /x {4AE48A64-6C6A-4E5A-95FA-55F5131DECF9}
Nokia Ovi One Touch Access-->MsiExec.exe /I{4AE48A64-6C6A-4E5A-95FA-55F5131DECF9}
Nokia Ovi System Utilities 6.85.3013-->msiexec /qn /x {82388E38-FDFD-4D36-9D35-EA720F9467D6}
Nokia Ovi System Utilities-->MsiExec.exe /X{82388E38-FDFD-4D36-9D35-EA720F9467D6}
Nokia PC Suite-->C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_ger.exe
Nokia PC Suite-->MsiExec.exe /I{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}
Nokia Software Updater-->MsiExec.exe /X{2FA28330-2028-4033-BD10-425C87EB4D54}
OCR Software by I.R.I.S 7.0-->C:\Programme\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
PC Connectivity Solution-->MsiExec.exe /I{6E0352EE-6F0D-4FBC-B1B8-4FF032C78BE0}
PDFCreator-->C:\Programme\PDFCreator\unins000.exe
PokerStars-->"C:\Programme\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
PowerCinema-->RunDll32 C:\PROGRA~1\GEMEIN~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programme\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\Setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
Security Update for 2007 Microsoft Office System (KB2277947)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5857EE21-03D0-482E-9620-5A30B314A2AE}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}
Security Update for 2007 Microsoft Office System (KB982312)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}
Security Update for 2007 Microsoft Office System (KB982331)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E8766951-2B6C-4022-86E8-80D2D1762B76}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}
Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5A4E43D5-858F-49BD-BA72-8F30E1793060}
Security Update for Microsoft Office Excel 2007 (KB982308)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
Security Update for Microsoft Office Outlook 2007 (KB980376)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {48113C06-9BA2-4D54-A731-D1D2C5B3144A}
Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
Security Update for Microsoft Office Publisher 2007 (KB982124)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {289FA8BC-6A8E-4341-B194-EB26B49E9F5D}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB2251419)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7E9103DA-253F-41FF-9E83-7C83806C77DA}
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Sicherheitsupdate für Windows Internet Explorer 8 (KB2183461)-->"C:\WINDOWS\ie8updates\KB2183461-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB974455)-->"C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Sicherheitsupdate für Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961371-v2)-->"C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB972260)-->"C:\WINDOWS\$NtUninstallKB972260$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Sicherheitsupdate für Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Skype web features-->MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Programme\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Text-To-Speech-Runtime-->MsiExec.exe /X{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office OneNote 2007 (KB980729)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {329050A9-EF80-40F9-B633-74508F54C1FF}
Update for Outlook 2007 Junk Email Filter (kb2279264)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {01D475AB-57B1-44CC-8A8F-3A6B0FA4989F}
Update für Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"
Update für Windows Internet Explorer 8 (KB976749)-->"C:\WINDOWS\ie8updates\KB976749-IE8\spuninst\spuninst.exe"
Update für Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe"
Update für Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update für Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Update für Windows XP (KB961503)-->"C:\WINDOWS\$NtUninstallKB961503$\spuninst\spuninst.exe"
Update für Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update für Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Update für Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Update für Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Update für Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
UseNeXT-->"C:\Programme\UseNeXT\unins000.exe"
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
VIA Vinyl Audio Codecs Driver Setup Program-->RunDll32.exe UnAudioNT.dll,UninstallAudio C:\WINDOWS\IsUn0407.exe -y-f"C:\PROGRA~1\VIAudioi\SBASetup\Uninst.isu"
VLC media player 1.0.2-->C:\Programme\VideoLAN\VLC\uninstall.exe
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Anmelde-Assistent-->MsiExec.exe /I{52B97218-98CB-4B8B-9283-D213C85E1AA4}
Windows Live Call-->MsiExec.exe /I{5FC68772-6D56-41C6-9DF1-24E868198AE6}
Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}
Windows Live Essentials-->C:\Programme\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}
Windows Live Messenger-->MsiExec.exe /X{41E654A9-26D0-4EAC-854B-0FA824FFFABB}
Windows Live-Uploadtool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Media Format 11 runtime-->"C:\Programme\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
Windows-Treiberpaket - Nokia Modem (06/01/2009 7.01.0.4)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_0777326F40B753DD4E385F058ADB286B70A301FE\nokbtmdm.inf
Windows-Treiberpaket - Nokia Modem (10/05/2009 4.2)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_AAB746D5658CCF4CAE7A35CED5F0ADA3C447A973\nokia_bluetooth.inf
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
WinRAR-->C:\Programme\WinRAR\uninstall.exe
WISO Bewerbung 2008-->MsiExec.exe /I{FD065B02-AE17-4496-8C0F-FFD3A9FD9460}
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Widgets-->C:\PROGRA~1\Yahoo!\Widgets\uninstall.exe
======Security center information======
AV: G Data InternetSecurity 2010
FW: G Data Personal Firewall
======System event log======
Computer Name: SARAH-803047CB5
Event Code: 7036
Message: Dienst "Terminaldienste" befindet sich jetzt im Status "Ausgeführt".
Record Number: 1011670
Source Name: Service Control Manager
Time Written: 20100711054554.000000+120
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 4201
Message: Netzwerkadapter "Broadcom...Netzwerkadapter - Paketplaner-Miniport" wurde mit dem Netzwerk verbunden, und das
System wurde über das Netzwerk im normalen Zustand gestartet.
Record Number: 1011669
Source Name: Tcpip
Time Written: 20100711054554.000000+120
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 6005
Message: Der Ereignisprotokolldienst wurde gestartet.
Record Number: 1011668
Source Name: EventLog
Time Written: 20100711054543.000000+120
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Uniprocessor Free.
Record Number: 1011667
Source Name: EventLog
Time Written: 20100711054543.000000+120
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 7036
Message: Dienst "Ati HotKey Poller" befindet sich jetzt im Status "Beendet".
Record Number: 1011666
Source Name: Service Control Manager
Time Written: 20100711022720.000000+120
Event Type: Informationen
User:
=====Application event log=====
Computer Name: SARAH-803047CB5
Event Code: 1
Message:
Record Number: 5078
Source Name: Nokia M Platform
Time Written: 20100213172907.000000+060
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 0
Message: Service gestartet
Record Number: 5077
Source Name: GDFwSvc
Time Written: 20100213172906.000000+060
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 1
Message:
Record Number: 5076
Source Name: Nokia M Platform
Time Written: 20100213172904.000000+060
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 0
Message:
Record Number: 5075
Source Name: GDScan
Time Written: 20100213172901.000000+060
Event Type: Informationen
User:
Computer Name: SARAH-803047CB5
Event Code: 1800
Message: Der Windows-Sicherheitscenterdienst wurde gestartet.
Record Number: 5074
Source Name: SecurityCenter
Time Written: 20100213172840.000000+060
Event Type: Informationen
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Programme\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Programme\ATI Technologies\ATI.ACE\;C:\Programme\Smart Projects\IsoBuster;C:\Programme\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 36 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2402
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Programme\Java\jre1.5.0\lib\ext\QTJava.zip
"QTJAVA"=C:\Programme\Java\jre1.5.0\lib\ext\QTJava.zip
-----------------EOF-----------------
|
|
12.08.2010, 20:59
| #5 |
| | C:\WINDOWS\system32\lsass.exe...ist das ok?......Code:
ATTFilter
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
º º
hjtscanlist v2.0
º º
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
Microsoft Windows XP [Version 5.1.2600]
C:
12.08.2010 21:41 C:\WINDOWS --------- 0
C:\pagefile.sys ---------
12.08.2010 21:28 C:\rsit --------- 0
12.08.2010 21:26 C:\Programme --------- 0
12.08.2010 21:40 C:\Config.Msi --------- 0
12.08.2010 19:20 C:\boot.ini --------- 211
17.02.2010 17:31 C:\temp --------- 0
17.02.2010 17:29 C:\setup.log --------- 164
12.12.2009 19:42 C:\VJVod_Cache --------- 0
05.12.2009 23:35 C:\O2C --------- 0
23.10.2009 17:52 C:\MSOCache --------- 0
12.10.2009 21:05 C:\ntldr --------- 251712
12.10.2009 20:09 C:\FSC-DeskUpdate.txt --------- 2603
12.10.2009 17:49 C:\4bf86f6f8f0e1f62a663278d --------- 0
11.10.2009 20:35 C:\bcmwl5.log --------- 167
10.10.2009 18:44 C:\RECYCLER --------- 0
10.10.2009 17:56 C:\Program Files --------- 0
10.10.2009 17:50 C:\fsc.tmp --------- 0
10.10.2009 17:41 C:\Dokumente und Einstellungen --------- 0
10.10.2009 17:37 C:\System Volume Information --------- 0
10.10.2009 17:32 C:\AddOn --------- 0
10.10.2009 17:28 C:\IO.SYS --------- 0
10.10.2009 17:28 C:\CONFIG.SYS --------- 0
10.10.2009 17:28 C:\AUTOEXEC.BAT --------- 0
10.10.2009 17:28 C:\MSDOS.SYS --------- 0
07.11.2007 09:12 C:\VC_RED.MSI --------- 232960
07.11.2007 09:09 C:\VC_RED.cab --------- 1442522
07.11.2007 09:03 C:\install.res.1041.dll --------- 81424
07.11.2007 09:03 C:\install.res.1042.dll --------- 79888
07.11.2007 09:03 C:\install.res.1028.dll --------- 76304
07.11.2007 09:03 C:\install.res.3082.dll --------- 96272
07.11.2007 09:03 C:\install.exe --------- 562688
07.11.2007 09:03 C:\install.res.1036.dll --------- 97296
07.11.2007 09:03 C:\install.res.2052.dll --------- 75792
07.11.2007 09:03 C:\install.res.1040.dll --------- 95248
07.11.2007 09:03 C:\install.res.1031.dll --------- 96272
07.11.2007 09:03 C:\install.res.1033.dll --------- 91152
07.11.2007 09:00 C:\eula.1031.txt --------- 17734
07.11.2007 09:00 C:\eula.1028.txt --------- 17734
07.11.2007 09:00 C:\eula.1042.txt --------- 17734
07.11.2007 09:00 C:\eula.2052.txt --------- 17734
07.11.2007 09:00 C:\eula.1033.txt --------- 10134
07.11.2007 09:00 C:\eula.1036.txt --------- 17734
07.11.2007 09:00 C:\eula.3082.txt --------- 17734
07.11.2007 09:00 C:\install.ini --------- 843
07.11.2007 09:00 C:\globdata.ini --------- 1110
07.11.2007 09:00 C:\eula.1040.txt --------- 17734
07.11.2007 09:00 C:\vcredist.bmp --------- 5686
07.11.2007 09:00 C:\eula.1041.txt --------- 118
01.01.2007 17:25 C:\nsd2D0.tmp --------- 5747
04.08.2004 14:00 C:\NTDETECT.COM --------- 47564
04.08.2004 14:00 C:\bootfont.bin --------- 4952
----------------------------------------
C:\WINDOWS
12.08.2010 21:47 C:\WINDOWS\WindowsUpdate.log --------- 1449178
12.08.2010 21:41 C:\WINDOWS\0.log --------- 0
12.08.2010 21:40 C:\WINDOWS\wiadebug.log --------- 159
12.08.2010 21:40 C:\WINDOWS\wiaservc.log --------- 50
12.08.2010 21:40 C:\WINDOWS\bootstat.dat --------- 2048
12.08.2010 21:39 C:\WINDOWS\SchedLgU.Txt --------- 32540
12.08.2010 21:30 C:\WINDOWS\iis6.log --------- 9896
12.08.2010 21:30 C:\WINDOWS\comsetup.log --------- 20597
12.08.2010 21:30 C:\WINDOWS\ntdtcsetup.log --------- 12454
12.08.2010 21:30 C:\WINDOWS\tsoc.log --------- 23591
12.08.2010 21:30 C:\WINDOWS\imsins.log --------- 1374
12.08.2010 21:30 C:\WINDOWS\ocmsn.log --------- 3420
12.08.2010 21:30 C:\WINDOWS\KB982214.log --------- 42544
12.08.2010 21:30 C:\WINDOWS\ocgen.log --------- 29560
12.08.2010 21:30 C:\WINDOWS\msgsocm.log --------- 3090
12.08.2010 21:30 C:\WINDOWS\FaxSetup.log --------- 61830
12.08.2010 21:30 C:\WINDOWS\setupapi.log --------- 15142
12.08.2010 21:29 C:\WINDOWS\imsins.BAK --------- 1374
12.08.2010 21:29 C:\WINDOWS\KB2115168.log --------- 47720
12.08.2010 21:29 C:\WINDOWS\KB981852.log --------- 44694
12.08.2010 21:25 C:\WINDOWS\KB2079403.log --------- 48787
12.08.2010 21:25 C:\WINDOWS\updspapi.log --------- 3484
12.08.2010 20:42 C:\WINDOWS\KB2183461-IE8.log --------- 15956
12.08.2010 20:38 C:\WINDOWS\KB2160329.log --------- 14409
12.08.2010 20:37 C:\WINDOWS\KB980436.log --------- 13921
12.08.2010 20:29 C:\WINDOWS\KB981997.log --------- 7481
12.08.2010 20:28 C:\WINDOWS\KB982665.log --------- 12457
12.08.2010 19:20 C:\WINDOWS\system.ini --------- 227
12.08.2010 19:20 C:\WINDOWS\win.ini --------- 584
03.08.2010 18:39 C:\WINDOWS\KB2286198.log --------- 13125
03.08.2010 18:39 C:\WINDOWS\setuperr.log --------- 0
03.08.2010 18:39 C:\WINDOWS\setupact.log --------- 0
24.04.2010 00:25 C:\WINDOWS\Robota.INI --------- 28
22.03.2010 23:29 C:\WINDOWS\BUHL.INI --------- 269
22.03.2010 23:25 C:\WINDOWS\wiso.ini --------- 137
07.03.2010 12:43 C:\WINDOWS\AviSplitter.INI --------- 38
16.11.2009 21:44 C:\WINDOWS\setupapi.log.0.old --------- 1062896
16.11.2009 21:41 C:\WINDOWS\WMSysPr9.prx --------- 316640
09.11.2009 21:05 C:\WINDOWS\SETUP.LST --------- 4600
09.11.2009 21:05 C:\WINDOWS\ST6UNST.000 --------- 315
08.11.2009 22:49 C:\WINDOWS\Irremote.ini --------- 0
04.11.2009 18:27 C:\WINDOWS\NeroDigital.ini --------- 69
12.10.2009 22:22 C:\WINDOWS\BricoPackUninst.txt --------- 56300
12.10.2009 22:22 C:\WINDOWS\BricoPackFoldersDelete.cmd --------- 4851
11.10.2009 20:18 C:\WINDOWS\hpoins11.dat --------- 127918
10.10.2009 19:51 C:\WINDOWS\nsreg.dat --------- 0
10.10.2009 18:13 C:\WINDOWS\Sti_Trace.log --------- 0
10.10.2009 17:36 C:\WINDOWS\REGLOCS.OLD --------- 8192
10.10.2009 17:28 C:\WINDOWS\control.ini --------- 0
10.10.2009 17:28 C:\WINDOWS\ODBCINST.INI --------- 4161
10.10.2009 17:26 C:\WINDOWS\WindowsShell.Manifest --------- 749
10.10.2009 17:24 C:\WINDOWS\vbaddin.ini --------- 37
10.10.2009 17:24 C:\WINDOWS\vb.ini --------- 36
14.04.2008 04:23 C:\WINDOWS\winhlp32.exe --------- 288768
14.04.2008 04:23 C:\WINDOWS\slrundll.exe --------- 32866
14.04.2008 04:22 C:\WINDOWS\regedit.exe --------- 231424
14.04.2008 04:22 C:\WINDOWS\notepad.exe --------- 156160
14.04.2008 04:22 C:\WINDOWS\hh.exe --------- 10752
14.04.2008 04:22 C:\WINDOWS\explorer.exe --------- 979456
14.04.2008 04:22 C:\WINDOWS\twain_32.dll --------- 50688
28.12.2006 21:01 C:\WINDOWS\002753_.tmp --------- 19569
06.05.2006 01:21 C:\WINDOWS\hpomdl11.dat --------- 11634
16.02.2006 22:33 C:\WINDOWS\Twunk_16.dll --------- 1216
16.02.2006 22:33 C:\WINDOWS\Twunk_32.dll --------- 1216
16.09.2005 14:01 C:\WINDOWS\sm56cht.dll --------- 49152
16.09.2005 14:01 C:\WINDOWS\sm56chs.dll --------- 49152
16.09.2005 14:01 C:\WINDOWS\sm56jpn.dll --------- 53248
16.09.2005 14:01 C:\WINDOWS\sm56hlpr.exe --------- 557056
16.09.2005 14:01 C:\WINDOWS\sm56itl.dll --------- 69632
16.09.2005 14:01 C:\WINDOWS\sm56brz.dll --------- 69632
16.09.2005 14:01 C:\WINDOWS\sm56spn.dll --------- 69632
16.09.2005 14:01 C:\WINDOWS\sm56eng.dll --------- 69632
16.09.2005 14:01 C:\WINDOWS\sm56ger.dll --------- 61440
16.09.2005 14:01 C:\WINDOWS\sm56fra.dll --------- 61440
29.10.2004 02:43 C:\WINDOWS\SET26.tmp --------- 11421
28.10.2004 03:53 C:\WINDOWS\SET27.tmp --------- 15304
21.10.2004 19:10 C:\WINDOWS\SET25.tmp --------- 10425
29.09.2004 21:14 C:\WINDOWS\SET29.tmp --------- 13249
12.08.2004 20:12 C:\WINDOWS\SET28.tmp --------- 10425
04.08.2004 14:00 C:\WINDOWS\SET3.tmp --------- 1014663
04.08.2004 14:00 C:\WINDOWS\SET4.tmp --------- 1086058
04.08.2004 14:00 C:\WINDOWS\SET8.tmp --------- 14043
04.08.2004 14:00 C:\WINDOWS\Seifenblase.bmp --------- 65978
04.08.2004 14:00 C:\WINDOWS\TASKMAN.EXE --------- 15872
04.08.2004 14:00 C:\WINDOWS\Blaue Spitzen 16.bmp --------- 1272
04.08.2004 14:00 C:\WINDOWS\twain.dll --------- 94800
04.08.2004 14:00 C:\WINDOWS\Santa Fe-Stuck.bmp --------- 65832
04.08.2004 14:00 C:\WINDOWS\Rhododendron.bmp --------- 17362
04.08.2004 14:00 C:\WINDOWS\twunk_16.exe --------- 49680
04.08.2004 14:00 C:\WINDOWS\Pr„riewind.bmp --------- 65954
04.08.2004 14:00 C:\WINDOWS\twunk_32.exe --------- 25600
04.08.2004 14:00 C:\WINDOWS\msdfmap.ini --------- 1405
04.08.2004 14:00 C:\WINDOWS\Kaffeetasse.bmp --------- 17062
04.08.2004 14:00 C:\WINDOWS\Zapotek.bmp --------- 9522
04.08.2004 14:00 C:\WINDOWS\vmmreg32.dll --------- 18944
04.08.2004 14:00 C:\WINDOWS\clock.avi --------- 82944
04.08.2004 14:00 C:\WINDOWS\Angler.bmp --------- 17336
04.08.2004 14:00 C:\WINDOWS\Granit.bmp --------- 26582
04.08.2004 14:00 C:\WINDOWS\F„cher.bmp --------- 26680
04.08.2004 14:00 C:\WINDOWS\Feder.bmp --------- 16730
04.08.2004 14:00 C:\WINDOWS\winhelp.exe --------- 257568
04.08.2004 14:00 C:\WINDOWS\explorer.scf --------- 80
04.08.2004 14:00 C:\WINDOWS\winnt.bmp --------- 48680
04.08.2004 14:00 C:\WINDOWS\winnt256.bmp --------- 48680
04.08.2004 14:00 C:\WINDOWS\desktop.ini --------- 2
04.08.2004 14:00 C:\WINDOWS\wmprfDEU.prx --------- 34818
04.08.2004 14:00 C:\WINDOWS\_default.pif --------- 707
17.11.1998 13:44 C:\WINDOWS\IsUn0407.exe --------- 328704
29.10.1998 16:45 C:\WINDOWS\IsUninst.exe --------- 306688
----------------------------------------
C:\WINDOWS\System
14.04.2008 04:23 C:\WINDOWS\System\winspool.drv --------- 146944
04.08.2004 14:00 C:\WINDOWS\System\AVIFILE.DLL --------- 109504
04.08.2004 14:00 C:\WINDOWS\System\COMMDLG.DLL --------- 33744
04.08.2004 14:00 C:\WINDOWS\System\KEYBOARD.DRV --------- 2000
04.08.2004 14:00 C:\WINDOWS\System\LZEXPAND.DLL --------- 9936
04.08.2004 14:00 C:\WINDOWS\System\MCIAVI.DRV --------- 73760
04.08.2004 14:00 C:\WINDOWS\System\MCISEQ.DRV --------- 25296
04.08.2004 14:00 C:\WINDOWS\System\MCIWAVE.DRV --------- 28160
04.08.2004 14:00 C:\WINDOWS\System\MMSYSTEM.DLL --------- 69632
04.08.2004 14:00 C:\WINDOWS\System\MMTASK.TSK --------- 1152
04.08.2004 14:00 C:\WINDOWS\System\MOUSE.DRV --------- 2032
04.08.2004 14:00 C:\WINDOWS\System\AVICAP.DLL --------- 70368
04.08.2004 14:00 C:\WINDOWS\System\OLECLI.DLL --------- 82944
04.08.2004 14:00 C:\WINDOWS\System\OLESVR.DLL --------- 24064
04.08.2004 14:00 C:\WINDOWS\System\setup.inf --------- 59167
04.08.2004 14:00 C:\WINDOWS\System\SHELL.DLL --------- 5120
04.08.2004 14:00 C:\WINDOWS\System\SOUND.DRV --------- 1744
04.08.2004 14:00 C:\WINDOWS\System\stdole.tlb --------- 5532
04.08.2004 14:00 C:\WINDOWS\System\SYSTEM.DRV --------- 3360
04.08.2004 14:00 C:\WINDOWS\System\TAPI.DLL --------- 19200
04.08.2004 14:00 C:\WINDOWS\System\TIMER.DRV --------- 4048
04.08.2004 14:00 C:\WINDOWS\System\VER.DLL --------- 9200
04.08.2004 14:00 C:\WINDOWS\System\VGA.DRV --------- 2176
04.08.2004 14:00 C:\WINDOWS\System\WFWNET.DRV --------- 13600
04.08.2004 14:00 C:\WINDOWS\System\MSVIDEO.DLL --------- 127104
----------------------------------------
C:\WINDOWS\System32
12.08.2010 21:40 C:\WINDOWS\system32\FNTCACHE.DAT --------- 166712
12.08.2010 21:39 C:\WINDOWS\system32\CatRoot2 --------- 0
12.08.2010 21:30 C:\WINDOWS\system32\dllcache --------- 0
12.08.2010 21:30 C:\WINDOWS\system32\drivers --------- 0
12.08.2010 21:00 C:\WINDOWS\system32\perfc009.dat --------- 74786
12.08.2010 21:00 C:\WINDOWS\system32\perfh009.dat --------- 449784
12.08.2010 21:00 C:\WINDOWS\system32\perfh007.dat --------- 467722
12.08.2010 21:00 C:\WINDOWS\system32\perfc007.dat --------- 88114
12.08.2010 21:00 C:\WINDOWS\system32\PerfStringBackup.INI --------- 1050054
12.08.2010 19:04 C:\WINDOWS\system32\wpa.dbl --------- 2206
07.08.2010 11:01 C:\WINDOWS\system32\d3d9caps.dat --------- 664
03.08.2010 20:09 C:\WINDOWS\system32\MRT.exe --------- 35962312
27.07.2010 08:29 C:\WINDOWS\system32\shell32.dll --------- 8503296
30.06.2010 14:28 C:\WINDOWS\system32\schannel.dll --------- 149504
24.06.2010 17:51 C:\WINDOWS\system32\ieframe.dll --------- 11077120
24.06.2010 14:22 C:\WINDOWS\system32\urlmon.dll --------- 1210368
24.06.2010 14:22 C:\WINDOWS\system32\wininet.dll --------- 916480
24.06.2010 14:22 C:\WINDOWS\system32\occache.dll --------- 206848
24.06.2010 14:22 C:\WINDOWS\system32\mstime.dll --------- 611840
24.06.2010 14:22 C:\WINDOWS\system32\mshtml.dll --------- 5951488
24.06.2010 14:21 C:\WINDOWS\system32\iertutil.dll --------- 1986560
24.06.2010 14:21 C:\WINDOWS\system32\msfeedsbs.dll --------- 55296
24.06.2010 14:21 C:\WINDOWS\system32\msfeeds.dll --------- 599040
24.06.2010 14:21 C:\WINDOWS\system32\inetcpl.cpl --------- 1469440
24.06.2010 14:21 C:\WINDOWS\system32\jsproxy.dll --------- 25600
24.06.2010 14:21 C:\WINDOWS\system32\iepeers.dll --------- 184320
24.06.2010 14:21 C:\WINDOWS\system32\iedkcs32.dll --------- 387584
24.06.2010 11:02 C:\WINDOWS\system32\win32k.sys --------- 1852032
23.06.2010 14:08 C:\WINDOWS\system32\ie4uinit.exe --------- 173056
17.06.2010 16:03 C:\WINDOWS\system32\iccvid.dll --------- 80384
15.06.2010 18:16 C:\WINDOWS\system32\l3codecx.ax --------- 143422
14.06.2010 09:41 C:\WINDOWS\system32\msxml3.dll --------- 1172480
27.05.2010 20:53 C:\WINDOWS\system32\javaws.exe --------- 153376
27.05.2010 20:53 C:\WINDOWS\system32\javaw.exe --------- 145184
27.05.2010 20:53 C:\WINDOWS\system32\javacpl.cpl --------- 73728
27.05.2010 20:53 C:\WINDOWS\system32\java.exe --------- 145184
27.05.2010 20:53 C:\WINDOWS\system32\deployJava1.dll --------- 411368
26.05.2010 19:14 C:\WINDOWS\system32\TZLog.log --------- 13312
01.05.2010 23:32 C:\WINDOWS\system32\winlogon32.exe --------- 0
01.05.2010 23:30 C:\WINDOWS\system32\smss32.exe --------- 0
28.04.2010 20:11 C:\WINDOWS\system32\ntoskrnl.exe --------- 2192256
28.04.2010 07:41 C:\WINDOWS\system32\ntkrnlpa.exe --------- 2069120
21.04.2010 15:28 C:\WINDOWS\system32\tzchange.exe --------- 46080
20.04.2010 07:29 C:\WINDOWS\system32\atmfd.dll --------- 285696
06.04.2010 04:52 C:\WINDOWS\system32\WMVCore.dll --------- 2462720
31.03.2010 00:16 C:\WINDOWS\system32\PresentationHostProxy.dll --------- 99176
31.03.2010 00:10 C:\WINDOWS\system32\PresentationHost.exe --------- 295264
19.03.2010 18:05 C:\WINDOWS\system32\wmp.dll --------- 4874240
10.03.2010 08:15 C:\WINDOWS\system32\vbscript.dll --------- 420352
05.03.2010 16:37 C:\WINDOWS\system32\asycfilt.dll --------- 65536
22.02.2010 16:22 C:\WINDOWS\system32\spmsg.dll --------- 18808
12.02.2010 12:03 C:\WINDOWS\system32\browserchoice.exe --------- 293376
12.02.2010 06:33 C:\WINDOWS\system32\6to4svc.dll --------- 100864
10.02.2010 22:06 C:\WINDOWS\system32\lvcoinst.log --------- 10921
05.02.2010 20:25 C:\WINDOWS\system32\quartz.dll --------- 1297408
29.01.2010 16:59 C:\WINDOWS\system32\inetcomm.dll --------- 691712
29.01.2010 16:43 C:\WINDOWS\system32\l3codeca.acm --------- 307260
22.01.2010 21:12 C:\WINDOWS\system32\ezsidmv.dat --------- 56
13.01.2010 16:00 C:\WINDOWS\system32\cabview.dll --------- 86528
03.01.2010 14:09 C:\WINDOWS\system32\PnPSystem.sys --------- 14
24.12.2009 08:59 C:\WINDOWS\system32\wintrust.dll --------- 177664
17.12.2009 09:40 C:\WINDOWS\system32\mspaint.exe --------- 346624
14.12.2009 09:08 C:\WINDOWS\system32\csrsrv.dll --------- 33280
12.12.2009 18:06 C:\WINDOWS\system32\nagasoft --------- 0
12.12.2009 11:20 C:\WINDOWS\system32\DRVSTORE --------- 0
10.12.2009 23:46 C:\WINDOWS\system32\MRT.INI --------- 219
09.12.2009 07:53 C:\WINDOWS\system32\jscript.dll --------- 726528
08.12.2009 11:23 C:\WINDOWS\system32\shlwapi.dll --------- 474624
05.12.2009 23:13 C:\WINDOWS\system32\spool --------- 0
05.12.2009 23:11 C:\WINDOWS\system32\FeAnim.ini --------- 497
05.12.2009 23:11 C:\WINDOWS\system32\FeMakro.ini --------- 571
05.12.2009 23:11 C:\WINDOWS\system32\o2cAreas.ocx --------- 933888
05.12.2009 23:11 C:\WINDOWS\system32\O2CPlayer.ocx --------- 1208320
04.12.2009 19:36 C:\WINDOWS\system32\CatRoot --------- 0
27.11.2009 19:11 C:\WINDOWS\system32\msyuv.dll --------- 17920
27.11.2009 18:08 C:\WINDOWS\system32\avifil32.dll --------- 85504
27.11.2009 18:08 C:\WINDOWS\system32\tsbyuv.dll --------- 8704
27.11.2009 18:08 C:\WINDOWS\system32\msrle32.dll --------- 11264
27.11.2009 18:08 C:\WINDOWS\system32\msvidc32.dll --------- 28672
27.11.2009 18:08 C:\WINDOWS\system32\iyuv_32.dll --------- 48128
16.11.2009 22:16 C:\WINDOWS\system32\nhm_server_trace.txt --------- 0
16.11.2009 21:37 C:\WINDOWS\system32\LogFiles --------- 0
08.11.2009 22:53 C:\WINDOWS\system32\MsiExec.exe.log --------- 188
08.11.2009 21:53 C:\WINDOWS\system32\Restore --------- 0
07.11.2009 01:07 C:\WINDOWS\system32\netfxperf.dll --------- 49488
07.11.2009 01:07 C:\WINDOWS\system32\mscoree.dll --------- 297808
07.11.2009 01:06 C:\WINDOWS\system32\dfshim.dll --------- 1130824
23.10.2009 18:01 C:\WINDOWS\system32\config --------- 0
21.10.2009 07:38 C:\WINDOWS\system32\httpapi.dll --------- 25088
21.10.2009 07:38 C:\WINDOWS\system32\strmfilt.dll --------- 75776
15.10.2009 18:28 C:\WINDOWS\system32\t2embed.dll --------- 119808
15.10.2009 18:28 C:\WINDOWS\system32\fontsub.dll --------- 81920
14.10.2009 14:41 C:\WINDOWS\system32\wiaaut.dll --------- 322392
14.10.2009 14:34 C:\WINDOWS\system32\capicom.dll --------- 515416
13.10.2009 12:32 C:\WINDOWS\system32\oakley.dll --------- 271360
12.10.2009 22:25 C:\WINDOWS\system32\usmt --------- 0
12.10.2009 22:24 C:\WINDOWS\system32\uxtheme.dll --------- 219136
12.10.2009 22:06 C:\WINDOWS\system32\spupdwxp.log --------- 90
12.10.2009 22:05 C:\WINDOWS\system32\Setup --------- 0
12.10.2009 22:05 C:\WINDOWS\system32\wbem --------- 0
----------------------------------------
C:\WINDOWS\Prefetch
12.08.2010 21:48 C:\WINDOWS\Prefetch\SKYPENAMES.EXE-00E36E08.pf --------- 78258
12.08.2010 21:46 C:\WINDOWS\Prefetch\WINRAR.EXE-3588DFE8.pf --------- 225456
12.08.2010 21:45 C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf --------- 19306
12.08.2010 21:43 C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-1E60A522.pf --------- 7934
12.08.2010 21:42 C:\WINDOWS\Prefetch\ADMIN.EXE-049D00C8.pf --------- 22912
12.08.2010 21:42 C:\WINDOWS\Prefetch\FIREFOX.EXE-1D57670A.pf --------- 135798
12.08.2010 21:42 C:\WINDOWS\Prefetch\CLI.EXE-02B0DB56.pf --------- 65794
12.08.2010 21:42 C:\WINDOWS\Prefetch\NCLRSSRV.EXE-3994D759.pf --------- 7910
12.08.2010 21:42 C:\WINDOWS\Prefetch\WMIAPSRV.EXE-1E2270A5.pf --------- 29590
12.08.2010 21:42 C:\WINDOWS\Prefetch\NCLUSBSRV.EXE-2369E9B7.pf --------- 101230
12.08.2010 21:42 C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf --------- 1630092
12.08.2010 21:39 C:\WINDOWS\Prefetch\REGSVR32.EXE-25EEFE2F.pf --------- 22494
12.08.2010 21:36 C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf --------- 35220
12.08.2010 21:31 C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf --------- 57794
12.08.2010 21:29 C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf --------- 22654
12.08.2010 21:26 C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf --------- 79460
12.08.2010 21:18 C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf --------- 110320
12.08.2010 21:15 C:\WINDOWS\Prefetch\RUNDLL32.EXE-13404D23.pf --------- 38486
12.08.2010 21:06 C:\WINDOWS\Prefetch\AVK.EXE-39941251.pf --------- 36614
12.08.2010 20:39 C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-170C935C.pf --------- 60136
12.08.2010 20:30 C:\WINDOWS\Prefetch\MRT.EXE-1B4A8D49.pf --------- 55372
12.08.2010 20:29 C:\WINDOWS\Prefetch\UPDATE.EXE-2B6890C3.pf --------- 51074
12.08.2010 20:27 C:\WINDOWS\Prefetch\UPDATE.EXE-053A368F.pf --------- 67158
12.08.2010 20:26 C:\WINDOWS\Prefetch\MSOHTMED.EXE-37A06F08.pf --------- 9436
12.08.2010 20:26 C:\WINDOWS\Prefetch\USENEXT.EXE-04543AEB.pf --------- 133896
12.08.2010 20:19 C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf --------- 12304
12.08.2010 19:58 C:\WINDOWS\Prefetch\HIJACKTHIS.EXE-28031E26.pf --------- 21356
12.08.2010 19:29 C:\WINDOWS\Prefetch\UPDATE.EXE-0558F735.pf --------- 51790
12.08.2010 19:29 C:\WINDOWS\Prefetch\UPDATE.EXE-2DD9F1AF.pf --------- 52346
12.08.2010 19:29 C:\WINDOWS\Prefetch\UPDATE.EXE-240796FB.pf --------- 52028
12.08.2010 19:29 C:\WINDOWS\Prefetch\UPDATE.EXE-0407C389.pf --------- 52296
12.08.2010 19:29 C:\WINDOWS\Prefetch\UPDATE.EXE-1E857CF8.pf --------- 96000
12.08.2010 19:19 C:\WINDOWS\Prefetch\MCCHSVC.EXE-15056CB3.pf --------- 60552
12.08.2010 19:17 C:\WINDOWS\Prefetch\MCUICNT.EXE-38ACF00B.pf --------- 84844
12.08.2010 19:16 C:\WINDOWS\Prefetch\MSCONFIG.EXE-35E4DAE9.pf --------- 57832
12.08.2010 19:07 C:\WINDOWS\Prefetch\SERVICELAYER.EXE-2529B377.pf --------- 23270
12.08.2010 19:07 C:\WINDOWS\Prefetch\NCLINSTALLER.EXE-29B54FA6.pf --------- 37732
12.08.2010 19:07 C:\WINDOWS\Prefetch\YAHOOWIDGETS.EXE-082C1CBC.pf --------- 59650
12.08.2010 19:07 C:\WINDOWS\Prefetch\SSSCHEDULER.EXE-04E2AAB1.pf --------- 13086
12.08.2010 19:07 C:\WINDOWS\Prefetch\KCREMINDER.EXE-2EEEB617.pf --------- 15940
12.08.2010 19:07 C:\WINDOWS\Prefetch\PCSUITE.EXE-002BF606.pf --------- 79142
12.08.2010 19:06 C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf --------- 14898
12.08.2010 19:06 C:\WINDOWS\Prefetch\JUSCHED.EXE-0137DEC5.pf --------- 34606
12.08.2010 19:06 C:\WINDOWS\Prefetch\SYNTPLPR.EXE-0AB61C3B.pf --------- 21738
12.08.2010 19:06 C:\WINDOWS\Prefetch\ADOBEARM.EXE-237273D1.pf --------- 17304
10.08.2010 07:57 C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf --------- 99792
10.08.2010 07:51 C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf --------- 48190
10.08.2010 07:51 C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf --------- 43262
10.08.2010 07:51 C:\WINDOWS\Prefetch\Layout.ini --------- 543500
10.08.2010 07:07 C:\WINDOWS\Prefetch\LOGTRANSPORT2.EXE-1E0E6253.pf --------- 66914
09.08.2010 22:41 C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf --------- 27050
09.08.2010 22:41 C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf --------- 14910
09.08.2010 22:30 C:\WINDOWS\Prefetch\VLC.EXE-29851A71.pf --------- 61664
09.08.2010 22:27 C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-19B1D743.pf --------- 57864
09.08.2010 21:52 C:\WINDOWS\Prefetch\CANCELAUTOPLAY.EXE-2083CAB1.pf --------- 11086
09.08.2010 21:51 C:\WINDOWS\Prefetch\BURNINGSTUDIO9.EXE-0B4C5D99.pf --------- 48856
09.08.2010 21:26 C:\WINDOWS\Prefetch\JAVA.EXE-2167859B.pf --------- 83042
08.08.2010 20:10 C:\WINDOWS\Prefetch\WINWORD.EXE-0B995611.pf --------- 101342
08.08.2010 20:03 C:\WINDOWS\Prefetch\RUNDLL32.EXE-12E27DD0.pf --------- 20038
08.08.2010 16:32 C:\WINDOWS\Prefetch\GDFWSVC.EXE-0F3E3E86.pf --------- 20788
08.08.2010 16:32 C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf --------- 15670
08.08.2010 11:36 C:\WINDOWS\Prefetch\SECURITYSCAN_RELEASE.EXE-007C7488.pf --------- 25720
08.08.2010 11:36 C:\WINDOWS\Prefetch\CONTENTDATS.EXE-00EB6874.pf --------- 13476
08.08.2010 11:35 C:\WINDOWS\Prefetch\UNINSTALL.EXE-083F13F7.pf --------- 12102
08.08.2010 00:30 C:\WINDOWS\Prefetch\SECURITYSCAN_RELEASE.EXE-022EA9CA.pf --------- 22918
08.08.2010 00:30 C:\WINDOWS\Prefetch\INSTALL_FLASH_PLAYER.EXE-3379A4A8.pf --------- 8832
08.08.2010 00:29 C:\WINDOWS\Prefetch\GETPLUSPLUS_ADOBE.EXE-20139700.pf --------- 39632
08.08.2010 00:29 C:\WINDOWS\Prefetch\SVCHOST.EXE-3530F672.pf --------- 33286
08.08.2010 00:28 C:\WINDOWS\Prefetch\GETPLUSPLUS_ADOBE_REG.EXE-347598E1.pf --------- 29150
07.08.2010 11:01 C:\WINDOWS\Prefetch\JAVAWS.EXE-1714DD62.pf --------- 55382
07.08.2010 11:01 C:\WINDOWS\Prefetch\JAUCHECK.EXE-2D8C9795.pf --------- 14538
07.08.2010 11:01 C:\WINDOWS\Prefetch\JAVAW.EXE-0159D575.pf --------- 72118
05.08.2010 21:51 C:\WINDOWS\Prefetch\ACRORD32.EXE-2E761392.pf --------- 64344
05.08.2010 19:48 C:\WINDOWS\Prefetch\RUNDLL32.EXE-164E8937.pf --------- 26658
05.08.2010 19:36 C:\WINDOWS\Prefetch\SOFTWAREUPDATE.EXE-1E90DF1F.pf --------- 58888
05.08.2010 19:36 C:\WINDOWS\Prefetch\DLLHOST.EXE-205D880D.pf --------- 18594
05.08.2010 19:36 C:\WINDOWS\Prefetch\IPODSERVICE.EXE-233792DA.pf --------- 23464
05.08.2010 19:35 C:\WINDOWS\Prefetch\ITUNES.EXE-15E88941.pf --------- 84076
05.08.2010 17:36 C:\WINDOWS\Prefetch\BROWSERPLUSINSTALLER.EXE-2E817F54.pf --------- 32314
05.08.2010 17:36 C:\WINDOWS\Prefetch\BROWSERPLUS.EXE-2AE5DB4D.pf --------- 6572
05.08.2010 17:31 C:\WINDOWS\Prefetch\HP_IZE.EXE-00BEE65E.pf --------- 42368
05.08.2010 17:25 C:\WINDOWS\Prefetch\HPQSCNVW.EXE-1B0B1F3E.pf --------- 38068
05.08.2010 17:25 C:\WINDOWS\Prefetch\HPQDSTCP.EXE-15A55A34.pf --------- 28388
05.08.2010 17:25 C:\WINDOWS\Prefetch\DOCPROC.EXE-09DCF2B8.pf --------- 13758
05.08.2010 17:25 C:\WINDOWS\Prefetch\HPQKYGRP.EXE-0A97815F.pf --------- 49384
05.08.2010 17:24 C:\WINDOWS\Prefetch\HPQDIREC.EXE-1F33DA5D.pf --------- 29634
03.08.2010 20:28 C:\WINDOWS\Prefetch\HPQUSGL.EXE-1D5E2061.pf --------- 46538
03.08.2010 18:37 C:\WINDOWS\Prefetch\UPDATE.EXE-3B05BF1A.pf --------- 68592
03.08.2010 18:37 C:\WINDOWS\Prefetch\IEXPLORE.EXE-2CA9778D.pf --------- 105350
03.08.2010 18:36 C:\WINDOWS\Prefetch\WUPDMGR.EXE-2F30BEAB.pf --------- 21638
03.08.2010 18:36 C:\WINDOWS\Prefetch\UPDATE.EXE-218565E4.pf --------- 54586
01.08.2010 20:12 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2D5CCB12.pf --------- 15302
01.08.2010 16:10 C:\WINDOWS\Prefetch\GDSC.EXE-19C9B849.pf --------- 71840
01.08.2010 15:25 C:\WINDOWS\Prefetch\DWWIN.EXE-30875ADC.pf --------- 28786
01.08.2010 15:21 C:\WINDOWS\Prefetch\DRWTSN32.EXE-2B4B52AC.pf --------- 16758
01.08.2010 08:48 C:\WINDOWS\Prefetch\CCLEANER.EXE-065E2F3F.pf --------- 61398
30.07.2010 19:13 C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf --------- 17694
29.07.2010 20:24 C:\WINDOWS\Prefetch\SNDVOL32.EXE-383480B7.pf --------- 15928
29.07.2010 16:57 C:\WINDOWS\Prefetch\AVKTRAY.EXE-1A474058.pf --------- 15910
29.07.2010 16:57 C:\WINDOWS\Prefetch\GDFIREWALLTRAY.EXE-0F04A5E3.pf --------- 13868
29.07.2010 16:57 C:\WINDOWS\Prefetch\SYNTPENH.EXE-3967AE36.pf --------- 12878
29.07.2010 16:57 C:\WINDOWS\Prefetch\ADECK.EXE-16336D05.pf --------- 11410
29.07.2010 16:02 C:\WINDOWS\Prefetch\READER_SL.EXE-2FAFE67A.pf --------- 11226
29.07.2010 16:02 C:\WINDOWS\Prefetch\WLTRAY.EXE-2BF83672.pf --------- 8696
26.07.2010 21:17 C:\WINDOWS\Prefetch\DUMPREP.EXE-1B46F901.pf --------- 94558
26.07.2010 19:10 C:\WINDOWS\Prefetch\RUNDLL32.EXE-2576181F.pf --------- 59114
26.07.2010 18:19 C:\WINDOWS\Prefetch\MMC.EXE-1EF9AA05.pf --------- 37182
26.07.2010 18:17 C:\WINDOWS\Prefetch\RUNDLL32.EXE-147710F4.pf --------- 29986
26.07.2010 18:11 C:\WINDOWS\Prefetch\RUNDLL32.EXE-3910966A.pf --------- 60564
25.07.2010 13:56 C:\WINDOWS\Prefetch\RUNDLL32.EXE-3D41B820.pf --------- 16330
25.07.2010 13:56 C:\WINDOWS\Prefetch\RUNDLL32.EXE-23DED262.pf --------- 16330
25.07.2010 13:56 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1203B58A.pf --------- 14916
25.07.2010 13:35 C:\WINDOWS\Prefetch\RUNONCE.EXE-2803F297.pf --------- 14868
25.07.2010 13:34 C:\WINDOWS\Prefetch\RUNDLL32.EXE-4376A292.pf --------- 55560
25.07.2010 11:45 C:\WINDOWS\Prefetch\HELPER.EXE-244ABC1F.pf --------- 15728
25.07.2010 11:44 C:\WINDOWS\Prefetch\UPDATER.EXE-2FF76E10.pf --------- 68572
24.07.2010 12:26 C:\WINDOWS\Prefetch\RUNDLL32.EXE-39F1EA5B.pf --------- 16492
24.07.2010 04:52 C:\WINDOWS\Prefetch\RUNDLL32.EXE-1A1367CD.pf --------- 15612
18.07.2010 19:03 C:\WINDOWS\Prefetch\IMGBURN.EXE-2A8530C2.pf --------- 26948
13.07.2010 21:51 C:\WINDOWS\Prefetch\OFFLB.EXE-03A7C203.pf --------- 11494
13.07.2010 21:51 C:\WINDOWS\Prefetch\OIS.EXE-337DD4BD.pf --------- 57068
13.07.2010 21:50 C:\WINDOWS\Prefetch\RUNDLL32.EXE-19CFA83F.pf --------- 42656
13.07.2010 21:10 C:\WINDOWS\Prefetch\UPDATE.EXE-164D45F8.pf --------- 52568
13.07.2010 21:03 C:\WINDOWS\Prefetch\MRTSTUB.EXE-2F4577E9.pf --------- 50852
13.07.2010 21:03 C:\WINDOWS\Prefetch\WINDOWS-KB890830-V3.9-DELTA.E-02899990.pf --------- 54228
12.07.2010 19:45 C:\WINDOWS\Prefetch\UNWISE.EXE-041266E9.pf --------- 19404
12.07.2010 19:35 C:\WINDOWS\Prefetch\UNWISE.EXE-2AE6A550.pf --------- 18280
12.07.2010 19:34 C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf --------- 2906
12.07.2010 19:33 C:\WINDOWS\Prefetch\SETUP.EXE-1CC543CB.pf --------- 14524
12.07.2010 19:33 C:\WINDOWS\Prefetch\SETUP.EXE-3AAA20CC.pf --------- 18168
----------------------------------------
C:\WINDOWS\Tasks
12.08.2010 21:40 C:\WINDOWS\Tasks\SA.DAT --------- 6
04.08.2004 14:00 C:\WINDOWS\Tasks\desktop.ini --------- 65
----------------------------------------
C:\WINDOWS\Temp
12.08.2010 21:41 C:\WINDOWS\Temp\tmp00002b33 --------- 0
12.08.2010 21:40 C:\WINDOWS\Temp\Perflib_Perfdata_278.dat --------- 16384
12.08.2010 21:40 C:\WINDOWS\Temp\logishrd --------- 0
12.08.2010 21:46 C:\WINDOWS\Temp\_avast4_ --------- 0
12.08.2010 21:18 C:\WINDOWS\Temp\Perflib_Perfdata_11a4.dat --------- 16384
12.08.2010 21:07 C:\WINDOWS\Temp\GDATA_Online_Update --------- 0
06.08.2010 20:08 C:\WINDOWS\Temp\Perflib_Perfdata_d8.dat --------- 16384
06.08.2010 20:03 C:\WINDOWS\Temp\Perflib_Perfdata_1c8.dat --------- 16384
03.08.2010 19:53 C:\WINDOWS\Temp\Perflib_Perfdata_1b0.dat --------- 16384
01.08.2010 08:46 C:\WINDOWS\Temp\Perflib_Perfdata_1dc.dat --------- 16384
31.07.2010 20:06 C:\WINDOWS\Temp\Perflib_Perfdata_bc.dat --------- 16384
----------------------------------------
C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp
12.08.2010 21:45 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\jusched.log --------- 221432
12.08.2010 21:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_e00.dat --------- 16384
12.08.2010 21:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_9bc.dat --------- 16384
12.08.2010 21:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_844.dat --------- 16384
12.08.2010 21:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\NGLALog.txt --------- 5072
12.08.2010 21:40 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\WPDNSE --------- 0
12.08.2010 21:40 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\AdobeARM.log --------- 546041
12.08.2010 21:22 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Uninstall Log 2010-08-12 #001.txt --------- 80800
12.08.2010 21:22 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Uninstall Log 2010-08-12 #004.txt --------- 6499
12.08.2010 21:22 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Uninstall Log 2010-08-12 #003.txt --------- 4030
12.08.2010 21:22 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\GenericTdiDll.txt --------- 2
12.08.2010 21:19 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Uninstall Log 2010-08-12 #002.txt --------- 5833
12.08.2010 21:06 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Microsoft .NET Framework 2.0-KB983583_20100812_184333046.html --------- 505696
12.08.2010 21:06 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Microsoft .NET Framework 2.0-KB983583_20100812_184333046-Msi0.txt --------- 12306486
12.08.2010 21:00 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\ASPNETSetup_00000.log --------- 5268
12.08.2010 21:00 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Setup Log 2010-08-12 #001.txt --------- 146534
12.08.2010 21:00 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\is-2MHMB.tmp --------- 0
12.08.2010 20:59 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\PCTInstaller --------- 0
12.08.2010 20:53 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Setup Log 2010-08-12 #004.txt --------- 17467
12.08.2010 20:43 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\dd_clwireg.txt --------- 18112
12.08.2010 20:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Setup Log 2010-08-12 #003.txt --------- 3617
12.08.2010 20:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Setup Log 2010-08-12 #002.txt --------- 7322
12.08.2010 20:39 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\dd_vcredistUI7A47.txt --------- 14962
12.08.2010 20:39 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\dd_vcredistMSI7A47.txt --------- 475278
09.08.2010 21:52 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\app_204F4A7E_temp --------- 0
09.08.2010 21:51 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\plugtmp-1 --------- 0
09.08.2010 21:41 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\4ja1E0.tmp --------- 0
09.08.2010 21:39 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\ame1DF.tmp --------- 0
09.08.2010 21:32 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\tax1DE.tmp --------- 0
09.08.2010 21:31 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\q9h1DD.tmp --------- 0
09.08.2010 21:31 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\klc1DC.tmp --------- 0
09.08.2010 21:30 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\cgc1DB.tmp --------- 0
09.08.2010 21:30 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\t8h1DA.tmp --------- 0
09.08.2010 21:29 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\b4o1D9.tmp --------- 0
09.08.2010 21:27 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\iqi1D1.tmp --------- 0
09.08.2010 21:26 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\hsperfdata_Kruziatus --------- 0
09.08.2010 21:06 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\lwp1B0.tmp --------- 0
09.08.2010 21:04 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\xj21AF.tmp --------- 0
09.08.2010 20:58 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\yef1AE.tmp --------- 0
09.08.2010 20:57 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\x5n1AD.tmp --------- 0
08.08.2010 11:35 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\contentDATs.exe --------- 450312
08.08.2010 11:35 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\SecurityScan_Release.exe --------- 3598224
07.08.2010 11:01 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\AUCHECK_PARSER.txt --------- 148
07.08.2010 11:01 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\AUCHECK_CORE.txt --------- 604
06.08.2010 20:04 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_598.dat --------- 16384
06.08.2010 20:03 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_71c.dat --------- 16384
06.08.2010 20:03 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_c80.dat --------- 16384
05.08.2010 17:38 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\BrowserPlusInstaller.log --------- 198646
05.08.2010 17:36 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\BPIC.tmp --------- 0
05.08.2010 17:31 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\TWAIN.LOG --------- 10466
05.08.2010 17:30 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\~DEST --------- 0
05.08.2010 17:26 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\hpp3.tmp --------- 0
05.08.2010 17:25 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Twain001.Mtx --------- 2
05.08.2010 17:25 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Twunk001.MTX --------- 156
05.08.2010 17:25 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Twunk002.MTX --------- 0
03.08.2010 19:57 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_fb4.dat --------- 16384
03.08.2010 19:57 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_484.dat --------- 16384
03.08.2010 19:54 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_c5c.dat --------- 16384
03.08.2010 19:39 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\plugtmp --------- 0
02.08.2010 18:21 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_628.dat --------- 16384
02.08.2010 18:02 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_f3c.dat --------- 16384
02.08.2010 18:02 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_8c0.dat --------- 16384
02.08.2010 18:01 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\Perflib_Perfdata_ae8.dat --------- 16384
01.08.2010 20:00 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\app_F1336374_temp --------- 0
01.08.2010 20:00 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\ash_tmp --------- 0
01.08.2010 16:11 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\GDATA_Online_Update --------- 0
29.07.2010 20:42 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\HSF K”ln - Anlage 2 Verpflichtende Erkl„rung Bachelor.pdf --------- 18013
29.07.2010 20:40 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\HS Fresenius - Anlage 1 Bewerbungsbogen berufsbegleitend.pdf --------- 27501
28.07.2010 19:29 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\_pcsuitecheck_new.xml --------- 139044
21.04.2010 22:39 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\NGLATempNokia --------- 0
10.04.2006 13:16 C:\DOKUME~1\KRUZIA~1\LOKALE~1\Temp\hpzDE054.hlp --------- 205262
----------------------------------------
C:\Programme
12.08.2010 21:40 C:\Programme\Gemeinsame Dateien --------- 0
12.08.2010 21:40 C:\Programme\Spyware Doctor --------- 0
12.08.2010 21:27 C:\Programme\trend micro --------- 0
12.08.2010 20:41 C:\Programme\Internet Explorer --------- 0
12.08.2010 20:29 C:\Programme\Movie Maker --------- 0
08.08.2010 11:35 C:\Programme\McAfee Security Scan --------- 0
25.07.2010 11:45 C:\Programme\Mozilla Firefox --------- 0
12.07.2010 19:45 C:\Programme\MAGIX --------- 0
12.07.2010 19:41 C:\Programme\ElsterFormular --------- 0
12.07.2010 19:39 C:\Programme\Nokia --------- 0
12.07.2010 19:34 C:\Programme\InstallShield Installation Information --------- 0
26.06.2010 18:34 C:\Programme\Microsoft Silverlight --------- 0
30.05.2010 18:12 C:\Programme\UseNeXT --------- 0
27.05.2010 20:53 C:\Programme\Java --------- 0
20.05.2010 22:11 C:\Programme\PokerStars --------- 0
13.05.2010 03:11 C:\Programme\Outlook Express --------- 0
25.04.2010 17:39 C:\Programme\Ascentive --------- 0
14.04.2010 22:18 C:\Programme\PDFCreator --------- 0
22.03.2010 23:25 C:\Programme\Buhl --------- 0
17.02.2010 17:40 C:\Programme\Ashampoo --------- 0
17.02.2010 17:28 C:\Programme\Syncrosoft --------- 0
23.01.2010 13:30 C:\Programme\Microsoft CAPICOM 2.1.0.2 --------- 0
22.01.2010 23:04 C:\Programme\PokerStars.NET --------- 0
22.01.2010 22:15 C:\Programme\Microsoft --------- 0
22.01.2010 22:13 C:\Programme\Windows Live --------- 0
22.01.2010 22:12 C:\Programme\Windows Live SkyDrive --------- 0
22.01.2010 21:27 C:\Programme\Logitech --------- 0
22.01.2010 21:08 C:\Programme\Skype --------- 0
20.01.2010 19:13 C:\Programme\Adobe --------- 0
12.12.2009 11:18 C:\Programme\PC Connectivity Solution --------- 0
08.12.2009 19:38 C:\Programme\iTunes --------- 0
08.12.2009 19:37 C:\Programme\iPod --------- 0
08.12.2009 19:36 C:\Programme\QuickTime --------- 0
05.12.2009 22:56 C:\Programme\Eleco --------- 0
05.12.2009 21:22 C:\Programme\SlySoft --------- 0
05.12.2009 19:50 C:\Programme\CCleaner --------- 0
05.12.2009 19:32 C:\Programme\Orb Networks --------- 0
23.11.2009 22:44 C:\Programme\FreeTime --------- 0
16.11.2009 23:17 C:\Programme\DIFX --------- 0
16.11.2009 21:41 C:\Programme\Windows Media Player --------- 0
12.11.2009 23:12 C:\Programme\Astonsoft --------- 0
09.11.2009 20:33 C:\Programme\CD Label Designer --------- 0
23.10.2009 18:00 C:\Programme\Microsoft Office --------- 0
23.10.2009 17:59 C:\Programme\Microsoft Visual Studio --------- 0
23.10.2009 17:58 C:\Programme\Microsoft.NET --------- 0
13.10.2009 21:39 C:\Programme\Bonjour --------- 0
13.10.2009 21:35 C:\Programme\Apple Software Update --------- 0
12.10.2009 21:46 C:\Programme\Messenger --------- 0
12.10.2009 21:18 C:\Programme\NetMeeting --------- 0
12.10.2009 21:17 C:\Programme\Windows NT --------- 0
12.10.2009 20:36 C:\Programme\HP --------- 0
12.10.2009 17:50 C:\Programme\MSBuild --------- 0
12.10.2009 17:49 C:\Programme\Reference Assemblies --------- 0
12.10.2009 17:44 C:\Programme\MSXML 6.0 --------- 0
11.10.2009 21:12 C:\Programme\VideoLAN --------- 0
11.10.2009 20:12 C:\Programme\Hewlett-Packard --------- 0
11.10.2009 19:51 C:\Programme\Yahoo --------- 0
10.10.2009 23:57 C:\Programme\MSXML 4.0 --------- 0
10.10.2009 21:50 C:\Programme\WinRAR --------- 0
10.10.2009 20:20 C:\Programme\Smart Projects --------- 0
10.10.2009 19:55 C:\Programme\ImgBurn --------- 0
10.10.2009 18:34 C:\Programme\G DATA --------- 0
10.10.2009 17:56 C:\Programme\CyberLink --------- 0
10.10.2009 17:54 C:\Programme\VIAudioi --------- 0
10.10.2009 17:54 C:\Programme\Synaptics --------- 0
10.10.2009 17:53 C:\Programme\ATI Technologies --------- 0
10.10.2009 17:51 C:\Programme\AMD --------- 0
10.10.2009 17:41 C:\Programme\Uninstall Information --------- 0
10.10.2009 17:32 C:\Programme\xerox --------- 0
10.10.2009 17:32 C:\Programme\microsoft frontpage --------- 0
10.10.2009 17:26 C:\Programme\WindowsUpdate --------- 0
10.10.2009 17:26 C:\Programme\Online-Dienste --------- 0
10.10.2009 17:24 C:\Programme\ComPlus Applications --------- 0
10.10.2009 17:23 C:\Programme\Online Services --------- 0
10.10.2009 17:23 C:\Programme\MSN Gaming Zone --------- 0
10.10.2009 17:22 C:\Programme\MSN --------- 0
----------------------------------------
C:\Dokumente und Einstellungen\All Users\..
Kruziatus
LocalService
NetworkService
Default User
All Users
----------------------------------------
C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
----------------------------------------
***** Ende des Scans 12.08.2010 um 21:50:29,04 ***
|
|
12.08.2010, 21:04
| #6 |
| | C:\WINDOWS\system32\lsass.exe...ist das ok?...... CCleaner: Code:
ATTFilter Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 10.0.45.2
Adobe Flash Player 10 Plugin Adobe Systems Incorporated 10.1.53.64
Adobe Reader 9.3.3 - Deutsch Adobe Systems Incorporated 9.3.3
Apple Application Support Apple Inc. 1.1.0
Apple Mobile Device Support Apple Inc. 2.6.0.32
Apple Software Update Apple Inc. 2.1.1.116
Ashampoo Burning Studio 9.21 ashampoo GmbH & Co. KG 9.2.1
Athlon 64 Processor Driver 1.2.2.2
ATI - Dienstprogramm zur Deinstallation der Software 6.14.10.1013
ATI Catalyst Control Center 1.2.2084.76
ATI Display Driver 8.18-050914a1-027021C
Bonjour Apple Inc. 1.0.106
Broadcom 802.11 Network Adapter
BroadGun pdfMachine
CCleaner Piriform
CloneCD SlySoft
Facebook Plug-In Facebook, Inc.
FormatFactory 2.15 Free Time 2.15
G Data InternetSecurity G Data Software AG 20.0.0.0
High Definition Audio Driver Package - KB888111 Microsoft Corporation 20040219.000000
HijackThis 2.0.2 TrendMicro 2.0.2
HP Customer Participation Program 7.0 HP 7.0
HP Imaging Device Functions 7.0 HP 7.0
HP Photosmart Essential HP 1.9.1.3
HP Photosmart, Officejet and Deskjet 7.0.A HP
HP Solution Center 7.0 HP 7.0
HP Update Hewlett-Packard 5.002.001.004
ImgBurn LIGHTNING UK! 2.5.0.0
IsoBuster 2.5.5 Smart Projects 2.5.5
iTunes Apple Inc. 9.0.1.8
J2SE Runtime Environment 5.0 Sun Microsystems, Inc. 1.5.0
Java(TM) 6 Update 20 Sun Microsystems, Inc. 6.0.200
Logitech Vid Logitech Inc. 1.10.1009
Logitech Webcam Software Logitech Inc. 12.10.1113
MAGIX Screenshare MAGIX AG 4.3.6.1987
McAfee Security Scan Plus McAfee, Inc. 2.0.181.2
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 German Language Pack Microsoft 1.1.4322
Microsoft .NET Framework 2.0 Service Pack 2 Microsoft Corporation 2.2.30729
Microsoft .NET Framework 3.0 Service Pack 2 Microsoft Corporation 3.2.30729
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation
Microsoft Office Enterprise 2007 Microsoft Corporation 12.0.6425.1000
Microsoft Silverlight Microsoft Corporation 4.0.50524.0
Microsoft User-Mode Driver Framework Feature Pack 1.5 Microsoft Corporation
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 8.0.56336
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 9.0.30729
Motorola SM56 Data Fax Modem
Mozilla Firefox (3.6.8) Mozilla 3.6.8 (de)
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 4.20.9876.0
MSXML 6.0 Parser (KB933579) Microsoft Corporation 6.10.1200.0
Nokia Connectivity Cable Driver Nokia 7.1.22.0
Nokia Home Media Server Nokia 1.0.174
Nokia Map Loader Nokia 3.0.22
Nokia Multimedia Common Components 2.4 Nokia 2.4.190
Nokia Music Nokia Music 1.3.20722
Nokia Ovi Application Installer 6.85.3011 Nokia
Nokia Ovi Content Copier 6.85.3011 Nokia
Nokia Ovi One Touch Access 6.85.3011 Nokia
Nokia Ovi System Utilities 6.85.3013 Nokia
Nokia PC Suite Nokia 7.1.40.1
Nokia Software Updater Nokia Corporation 01.04.035.32590
OCR Software by I.R.I.S 7.0 HP 7.0
PC Connectivity Solution Nokia 9.44.0.3
PDFCreator Frank Heindörfer, Philip Chinery 0.9.9
PokerStars PokerStars
PowerCinema
QuickTime Apple Inc. 7.64.17.73
Skype web features Skype Technologies S.A. 1.0.3971
Skype™ 4.1 Skype Technologies S.A. 4.1.179
Synaptics Pointing Device Driver 8.0.0.0
Text-To-Speech-Runtime Magix Development GmbH 1.0.0.0
UseNeXT Tangysoft Ltd.
VIA Vinyl Audio Codecs Driver Setup Program
VLC media player 1.0.2 VideoLAN Team 1.0.2
Windows Internet Explorer 8 Microsoft Corporation 20090308.140743
Windows Live Anmelde-Assistent Microsoft Corporation 5.000.818.5
Windows Live Essentials Microsoft Corporation 14.0.8089.0726
Windows Live-Uploadtool Microsoft Corporation 14.0.8014.1029
Windows Media Format 11 runtime
Windows XP Service Pack 3 Microsoft Corporation 20080414.031514
Windows-Treiberpaket - Nokia Modem (06/01/2009 7.01.0.4) Nokia 06/01/2009 7.01.0.4
Windows-Treiberpaket - Nokia Modem (10/05/2009 4.2) Nokia 10/05/2009 4.2
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) Nokia 08/22/2008 7.0.0.0
WinRAR
WISO Bewerbung 2008 Buhl Data Service GmbH 6.1.0.56
Yahoo! Install Manager
Yahoo! Widgets Yahoo! Inc. 4.5.1.0
|
|
12.08.2010, 21:39
| #7 | |
| /// Helfer-Team | C:\WINDOWS\system32\lsass.exe...ist das ok?...... einfach übersprungen? Zitat:
|
|
| Themen zu C:\WINDOWS\system32\lsass.exe...ist das ok?...... |
| adobe, antivirus, bho, bonjour, dateisystem, einstellungen, explorer, firefox, firewall, hijack, hijackthis, hkus\s-1-5-18, installation, internet, internet explorer, lan, log, monitor, mozilla, object, performance, plug-in, programme, security, security scan, software, system, windows, windows xp, wireless lan |
Linear-Darstellung
